SSO for React SPA with another Auth0 client that is not SPA

I have 2 websites:

  • main.service.com that has the login and is implemented in Flask with server-side template rendering
  • b.service.com that is React SPA with NO login functionality, service is available if and only if user’s logged in at main.service.com

I currently have 2 applications, one for each domain, in the same tenant, thereby having the same user database.

I noticed a desync between the logged in users when I try logging in and out with a number of accounts a couple of times

I have a feeling that I’ve been doing this wrong the whole time.

If only 1 application is required:

  • Should it be regular web applications or single page applications?
  • What additional settings should I set so that the original login doesn’t break?

Hi @henry132109,

I will need more information before attempting to help:

  • Is the b.service.com redirecting you to main.service.com for logging in, or what does the flow look like?
  • How do you reach the b.service.com app?
  • Can you explain more about what you mean by “desync” and how it plays out?

Have a good one,
Vlad